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In the claims : The claims are as follows. 

1. (Currently amended) A method for registering a-U B user 
equipment terminal with an IMS a multimedia network, so as to 
allow the UE user equipment terminal to access, over a digital 
communication system, an I M a multimedia network service to which 
the— user equipment terminal is subscribed, the method 
including comprising: 

g otop in which an S CSCF a serving call session control 

function of the— iM S multimedia network oondo sending an— AV 
authentication vector request message to an HSS a home subscriber 
server , and 

the method Gharactcrigcd in that it includoo a otop in which 

in rcoponoQ the home subscriber server responding to the AV 
roqucDt mopoagc, — the HSS providca b y providing in a AV an 
authentication vector request response message a field indicating 
a list of services to which the— tJ B user equipment terminal is 
subscribed along with either information that allows establishing 
6As — security associations for each such service or information 
that could be used as keying material or other input for other 
security mechanisms specific to each service. 

2. (Currently amended) The method as in claim 1, further 
charge tori zed in that w herein in responding to the AV 
authentication vector request response message, the serving call 
session control function g CSCF of the--^M S multimedia network 
adds the information included in the-A ¥ authentication vector 
request response message to an authorization challenge message 
and forwards it to an interrogating call session control function 
I CSCF of the^M S multimedia network . 

3. (Currently amended) The method as in claim 2, further 
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charac tori zed in that w herein w hen the interrogating call session 
control function I CSCF receives the authorization challenge 
message, it forwards -arfe —the message as a forwarded authorization 
challenge message to a proxy call session control function P CSCF 
of the— iM S multimedia network , which parses the forwarded 
authorization challenge message, generates— SP Q security policy 
database entries and corresponding- ^ security association s for 
both the proxy call session control function P CSCF and— U- S the 
user equipment terminal , inserts its— SPD security policy database 
entries in its-Oi^ security policy database and corresponding— SA 
security association s into its— S A security association 
database PB, and provides in an updated authorization challenge 
message for the-U B user equipment terminal the SP D security 
policy database entries and corresponding— S A security 
association s . 

4. (Currently amended) The method as in claim 3, further 
charactorigod in that w herein after receiving the updated 
authorization challenge message, the— B E user equipment terminal 
inserts the— SP D security policy database entries into its SPD 
security policy database and inserts the corresponding— SA 
security association s into its— S A security association 
databaseP B. 

5. (Currently amended) The method as in claim 4, further 
charactQrizcd in that further comprising keeping a register is 
kept for all services to allocate numbers used to derive keys for 
each service or part of a service. 

6. (Currently amended) The method as in claim 5, further 
charac tori zod in that w herein the keys are an integrity key and a 
cipher key and are derived by applying a mapping to an argument 
including the number allocated to the respective service or part 



-3- 



Attorney Docket No.: 944-1.68 
Serial No.: 10/082,534 



of a service by the register being kept. 

7. (Currently amended) A method for registering a— SB_user 
equipment terminal with an IMS a multimedia network so as to allow 
the— ^ user equipment terminal to access, over a digital 
communication system, an IM a multimedia network service to which 
the— ^ user equipment terminal is subscribed, the method 
including a otcp in which comprising: 

a proxy call session control function P CSCF of the IMS 

multimedia network communicQtco communicating to the— ^ user 
equipment terminal an authorization challenge message, 
character i zed in that w herein the authorization challenge message 
includes at least one— SP B security policy database entry and a 
corresponding— S A security association derived by the proxy call 
session control functio n P CSCF from information provided to the 
proxy call session control function P CSCF indicating services to 
which the UE user equipment terminal is subscribed along with 
either information that allows establishing— S A security 
association s for each such service or information that could be 
used as keying material or other input for other security 
mechanisms specific to each service, and 

the the B B user equipment terminal inoortQ inserting the at 

least on o SPD security policy database entry into its SPD 
security policy database and the corresponding— S A security 
association into its^ A security association databaseP B, so that 
for a predetermined time any traffic between the- ^ user 
equipment terminal and the P CSCF proxy call session control 
function is secure for the services to which th e UE user 
equ i pmen t t e rmi na 1 is subscribed. 

8. (Currently amended) The method as in claim 7, further 
Gharactorigcd in that comprising keeping a register io kept for 
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all services to allocate numbers used to derive keys for each 
service or part of a service. 

9. (Currently amended) The method as in claim 8, further 
GharactcriEGd in that w herein the keys are an integrity key and a 
cipher key and are derived by applying a mapping to an argument 
including the number allocated to the respective service or part 
of a service by the register being kept. 

10. (Currently amended) A-g S user equipment terminal , 
comprising: 

means , responsive to for receiving an authorization 

challenge message from a proxy call session control function— P— 
CSCF of an IMS a multimedia network , wherein the authorization 
challenge message includes at least one— &P e security policy 
database entry and a corresponding— S A security association 
derived by the proxy call session control function P CSCF from 
information provided to the proxy call session control function 
P CSCF indicating services to which th e UE user equipment 
terminal is subscribed along with either information that allows 
establishing— SA security association s for each such service or 
information that could be used as keying material or other input 
for other security mechanisms specific to each service, and mcana 
for inserting the at least oneHSP D security policy database entry 
into its— &P D security policy database, and 

means, also responsive to the authorization challenge 

message, for inserting the corresponding—S A security association 
into its^S A security association database D&7 — oo that for a 
prodQtorminod time any traffic between the UE and the P CSCF io 
OQGurQ for the Gorvicoo to which the UE io oubocribod . 

11. (Currently amended) A digital communication oyotcm 
Gomprioing an IMS m ultimedia network having comprising an S CSCF a 
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serving call session control function and an HSS a home subscriber 
server, wherein the serving call session control function S CSCF 
includes means for sending an-j ^ authentication vector request 
message to the-4iS S home subscriber server , and the HSS home 
subscriber server includes means for providing, in response to 
the— ^ authentication vector request message, a AV an 
authentication vector request response message including a field 
indicating a list of services to which a-US user equipment 
terminal is subscribed along with either information that allows 
establishing--6A security association s for each such service or 
information that could be used as keying material or other input 
for other security mechanisms specific to each service. 

12. (New) A user equipment terminal, comprising: 

a first application program interface, responsive to an 
authorization challenge message from a proxy call session control 
function of a multimedia network, wherein the authorization 
challenge message includes at least one security policy database 
entry and a corresponding security association derived by the 
proxy call session control function from information provided to 
the proxy call session control function indicating services to 
which the user equipment terminal is subscribed along with either 
information that allows establishing security associations for 
each such service or information that could be used as keying 
material or other input for other security mechanisms specific to 
each service, for inserting the at least one security policy 
database entry into its security policy database, and 

a second application program interface, also responsive to 
the authorization challenge message, for inserting the 
corresponding security association into its security association 
database . 



-6- 



Attorney Docket No.: 944-1.68 
Serial No.: 10/082,534 

13. (New) A multimedia network, comprising a serving call 
session control function and a home subscriber server, wherein 
the serving call session control function is configured to send 
an authentication vector request message to the home subscriber 
server, and the home subscriber server is configured to provide 
to the call session control function, in response to the 
authentication vector request message, an authentication vector 
request response message including a field indicating a list of 
services to which a user equipment terminal is subscribed along 
with either information that allows establishing security 
associations for each such service or information that could be 
used as keying material or other input for other security 
mechanisms specific to each service. 

14. (New) The multimedia network as in claim 13, further 
comprising an interrogating call session control function, and 
wherein in response to the authentication vector request response 
message, the serving call session control function is configured 
to add the information included in the authentication vector 
request response message to an authorization challenge message 
and to forward it to the interrogating call session control 
function . 

15. (New) The multimedia network as in claim 14, further 
comprising a proxy call session control function, and wherein the 
interrogating call session control function is configured so that 
in response to the authorization challenge message, it foinvards 
the message as a forwarded authorization challenge message to the 
proxy call session control function, which is configured to then 
parse the forwarded authorization challenge message, generate 
security policy database entries and corresponding security 
associations for both the proxy call session control function and 
the user equipment terminal, insert its security policy database 
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entries in its security policy database and corresponding 
security associations into its security association database, and 
provide in an updated authorization challenge message for the 
user equipment terminal the security policy database entries and 
corresponding security associations. 

16. (New) The multimedia network as in claim 13, further 
comprising a register for all services to allocate numbers used 
to derive keys for each service or part of a service. 

17. (New) The multimedia network as in claim 16, wherein the 
keys are an integrity key and a cipher key both derived from a 
mapping to an argument including the number allocated to the 
respective service or part of a service included in the register. 



-8- 



